OS X Mavericks update to fix major security flaw in Macs

Apple follows iOS 7 update with Mac OS X Mavericks patch to address encryption issues.

Apple has patched a major security flaw in OS X Mavericks that could allow hackers to intercept users' communications.

The OS X Mavericks v10.9.2 patch fixes a vulnerability that alters the way Mac devices handle encrypted communications, and means critical checks on the validity of a site's SSL certificate are overlooked when users try to establish a secure connection.

As a result, users have been warned to take caution when accessing sensitive web content using unsecured wireless networks until they have a chance to download the fix.

The emergence of the OS X Mavericks v10.9.2 patch comes several days after the consumer electronics giant flagged the existence of the same fault affecting iOS 6 and iOS7 devices.

At the time, details about a similar flaw in OS X Mavericks began to circulate, but a fix for the issue was only published on Apple's support pages yesterday.

The update also reportedly includes improvements to Mail, Messages and Safari apps, and also allows Mac users to participate in FaceTime calls.

In both cases, Apple's security alerts have stopped short of revealing whether the vulnerabilities have been exploited in the wild, or how long the company has been aware of their existence.

Mark Bower, vice president of infosecurity firm Voltage Security, said Mac users should download the patch as quickly as possible.

"This is a major bug that puts users' sensitive data, like login credentials, passwords, email and browsing data at risk," said Bower.

"Users should patch at their earliest opportunity. Until then, users should be very wary of accessing web content that is sensitive, especially on a network that attackers may also be on at the same time which is more often than you might think."

Featured Resources

How virtual desktop infrastructure enables digital transformation

Challenges and benefits of VDI

Free download

The Okta digital trust index

Exploring the human edge of trust

Free download

Optimising workload placement in your hybrid cloud

Deliver increased IT agility with the cloud

Free Download

Modernise endpoint protection and leave your legacy challenges behind

The risk of keeping your legacy endpoint security tools

Download now

Most Popular

Sony pulls out of MWC 2022
Business operations

Sony pulls out of MWC 2022

14 Jan 2022
How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

6 Jan 2022
Dell XPS 15 (2021) review: The best just got better
Laptops

Dell XPS 15 (2021) review: The best just got better

14 Jan 2022